GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,787
Composer 5,986
Erlang 73
GitHub Actions 53
Go 4,029
Maven 6,658
npm 6,516
NuGet 976
pip 5,380
Pub 13
RubyGems 1,070
Rust 1,404
Swift 61

Unreviewed advisories

All unreviewed 309,116

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

134 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows... Critical Unreviewed

CVE-2026-2467 was published Jun 17, 2026

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and... Critical Unreviewed

CVE-2026-42055 was published Jun 17, 2026

Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute... Critical Unreviewed

CVE-2026-47291 was published Jun 9, 2026

Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network. Critical Unreviewed

CVE-2026-45657 was published Jun 9, 2026

Heap-based buffer overflow in Windows TCP/IP allows an unauthorized attacker to elevate... Critical Unreviewed

CVE-2026-42904 was published Jun 9, 2026

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed... Critical Unreviewed

CVE-2026-8175 was published May 27, 2026

FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in... Critical Unreviewed

CVE-2026-48689 was published May 26, 2026

FastNetMon Community Edition through 1.2.9 contains an integer overflow in the BGP AS_PATH... Critical Unreviewed

CVE-2026-48691 was published May 26, 2026

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This... Critical Unreviewed

CVE-2026-9256 was published May 26, 2026

A heap-based buffer overflow in the CNID daemon comm_rcv() function in Netatalk 2.0.0 through 4.4... Critical Unreviewed

CVE-2026-44050 was published May 21, 2026

A potential security vulnerability has been identified in the HP Linux Imaging and Printing... Critical Unreviewed

CVE-2026-8631 was published May 20, 2026

NGINX JavaScript has a vulnerability when the js_fetch_proxy directive is configured with at... Critical Unreviewed

CVE-2026-8711 was published May 19, 2026

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This... Critical Unreviewed

CVE-2026-42945 was published May 13, 2026

Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute... Critical Unreviewed

CVE-2026-41096 was published May 12, 2026

Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server. If mod_proxy_ajp... Critical Unreviewed

CVE-2026-28780 was published May 6, 2026

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The... Critical Unreviewed

CVE-2025-70067 was published May 4, 2026

A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to... Critical Unreviewed

CVE-2026-42483 was published May 1, 2026

When processing the header of an incoming message, libnv failed to properly validate the message... Critical Unreviewed

CVE-2026-35547 was published Apr 30, 2026

Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library... Critical Unreviewed

CVE-2026-5450 was published Apr 20, 2026

SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow... Critical Unreviewed

CVE-2026-32956 was published Apr 20, 2026

Creolabs Gravity before 0.9.6 contains a heap buffer overflow vulnerability in the... Critical Unreviewed

CVE-2026-40504 was published Apr 16, 2026

Heap buffer overflow in ANGLE in Google Chrome prior to 147.0.7727.101 allowed a remote attacker... Critical Unreviewed

CVE-2026-6296 was published Apr 15, 2026

Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this... Critical Unreviewed

CVE-2026-34865 was published Apr 13, 2026

XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in... Critical Unreviewed

CVE-2006-10003 was published Mar 19, 2026

XML::Parser versions through 2.47 for Perl could overflow the pre-allocated buffer size cause a... Critical Unreviewed

CVE-2006-10002 was published Mar 19, 2026

Previous1…6 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

134 advisories